// Use when verifying Relayfile provider integrations end-to-end against a real workspace, including auth, OAuth connect, sync, file-tree shape, discovery materialization, outbound writeback, inbound webhook checks, evidence capture, and issue filing.
Use when investigating Relayfile cloud, mount daemon, provider sync, discovery, writeback, digest generation, token handling, WorkspaceDO behavior, or architecture during integration verification and debugging.
Use when creating or fixing .claude/rules/ files - provides correct paths frontmatter (not globs), glob patterns, and avoids Cursor-specific fields like alwaysApply
Use when working in a shared relayfile virtual filesystem with other agents - covers reading/writing files with metadata, discovering other agents' work, conflict handling, ACL permissions, and real-time collaboration patterns
| name | integration-verification-playbook |
| description | Use when verifying Relayfile provider integrations end-to-end against a real workspace, including auth, OAuth connect, sync, file-tree shape, discovery materialization, outbound writeback, inbound webhook checks, evidence capture, and issue filing. |
The canonical methodology for proving — with empirical evidence against a real Relayfile workspace — that a provider integration actually works end-to-end. Read this in full at the start of every verification task. Update it whenever a new failure mode appears.
A Nango integration shipping does not equal an integration that works. Across the May 2026 verification effort, the following gaps were only visible by actually exercising the end-to-end flow on a real workspace, never by reading PR descriptions:
cloud#778).cloud#780).cloud#766).backfilled:true.pg from a sibling import, breaking deploys (cloud#762).Each of these passed CI. Each was caught only by running the full flow. The playbook locks in that the full flow gets run.
For every provider × workspace, run these in order. Don't skip phases. If a phase is honestly skippable (e.g. provider does not support outbound writes), note that explicitly with the reason — never silently.
~/.relayfile/credentials.json is valid:
curl -sS -o /dev/null -w 'HTTP %{http_code}\n' \
"https://api.relayfile.dev/v1/workspaces/<ws>/fs/tree?path=/&depth=1" \
-H "Authorization: Bearer $TOKEN" -H "X-Correlation-Id: auth-$RANDOM" --max-time 30
200.401: refresh. Try relayfile login --no-open first. If it emits warning: could not refresh workspace token for <ws>: ... context deadline exceeded (the cloud#766 symptom), mint the token directly with curl:
CAT=$(jq -r .accessToken ~/.relayfile/cloud-credentials.json)
curl -X POST "https://agentrelay.com/cloud/api/v1/workspaces/<ws>/join" \
-H "Authorization: Bearer $CAT" -H "Content-Type: application/json" \
-d '{"agentName":"relayfile-cli","scopes":["fs:read","fs:write","sync:read","sync:trigger","ops:read"]}' \
--max-time 120 -o /tmp/join.out
.token into ~/.relayfile/credentials.json's .token field (use python3 -c 'import json...' for safe in-place edit).accessToken after relayfile login): the operator must complete the browser OAuth. Ask, don't wait silently.relayfile integration list --workspace <ws> --json
{"provider":"<p>","status":"ready","connectionId":"<uuid>"} (or connected).relayfile integration connect <p> --workspace <ws> --no-open and complete OAuth in the browser. The CLI poll resolves once the cloud reports oauth.connected:true (often <5s after the Nango webhook fires; see cloud#736 for the connection-created ingress fix that made this reliable).curl -sS "https://agentrelay.com/cloud/api/v1/workspaces/<ws>/integrations/<p>/status" \
-H "Authorization: Bearer $TOKEN" -H "X-Correlation-Id: c-$RANDOM" --max-time 60
oauth.connected:true, connectionMatched:true, currentConnectionId:<uuid>, initialSync.state is queued | running | complete, lastError:null.oauth.connected:false with no error after completing OAuth, OR connectionMatched:false with a non-null currentConnectionId — that's a Nango webhook ingestion gap (the cloud#736 family).initialSync.state === "complete". If it gets stuck in queued with syncName:null / model:null, that's typically a Nango plan/quota issue — the sync worker accepted the job but Nango never registered the actual sync. Confirm with the user (the operator can check Nango's billing/usage UI) before assuming it's a code bug.curl -sG "https://api.relayfile.dev/v1/workspaces/<ws>/fs/tree" \
--data-urlencode "path=/<p>" --data-urlencode "depth=2" \
-H "Authorization: Bearer $TOKEN" -H "X-Correlation-Id: t-$RANDOM" --max-time 60
LAYOUT.md + _index.json). Note total path count for evidence./<p>/LAYOUT.md to confirm the documented record/alias structure matches what's actually emitted:
curl -sG "https://api.relayfile.dev/v1/workspaces/<ws>/fs/file" \
--data-urlencode "path=/<p>/LAYOUT.md" -H "Authorization: Bearer $TOKEN"
/<p>/<resource>/<canonical-filename>.json) and the by-id/by-uuid/by-* alias subtrees the LAYOUT advertises. They must actually exist.discovery/<p>/.../.schema.json but no /discovery/<p>/ subtree exists, that's the pre-#761 condition and is itself a finding.curl -sS -X POST "https://agentrelay.com/cloud/api/v1/workspaces/<ws>/sync/refresh" \
-H "Authorization: Bearer $TOKEN" -H "Content-Type: application/json" -d '{}' \
--max-time 240
200 with body { "workspaceId": "<ws>", "refreshed": [{ "provider": "<p>", "discoveryBackfilled": true, "errors": 0 }, ...] }.
Note: this endpoint is currently slow (commonly 90–180s for 6 providers). 240s timeout is a safe floor.for path in \
"/discovery/<p>/.adapter.md" \
"/discovery/<p>/<resource>/.schema.json" \
"/discovery/<p>/<resource>/.create.example.json"; do
curl -sG "https://api.relayfile.dev/v1/workspaces/<ws>/fs/file" \
--data-urlencode "path=$path" -H "Authorization: Bearer $TOKEN"
done
.schema.json: parse content, report properties key count + lastEditedAt.cloud#778 pattern to watch for: refreshed[].discoveryBackfilled === true but properties: {} AND lastEditedAt is older than the refresh timestamp. That means writeManagedFile dedup'd a byte-identical empty schema — the sampling silently produced zero records for that resource. File a separate issue per provider × resource with the empty schema, citing the stale lastEditedAt as evidence.cloud#761 honest scope: placeholder-path resources (/<p>/<parent>/{placeholder}/<sub>) are intentionally NOT backfilled by #761 — their schemas stay permissive-empty by design. Note these explicitly; do not confuse with #778.Only run if Phase 5 produced a non-empty .schema.json for at least one resource AND a safe target exists.
In order of preference:
relayfile-writeback-test-* (e.g. KAN-4 in rw_fc7b534b).curl -sG "https://api.relayfile.dev/v1/workspaces/<ws>/fs/file" \
--data-urlencode "path=/<p>/<resource>/<canonical-filename>.json" \
-H "Authorization: Bearer $TOKEN"
revision for If-Match.readOnly:false) field, modify it with the marker. Marker format: [relayfile writeback test <ISO-utc>]. For dict-shaped fields (e.g. Jira ADF descriptions), append a structured node. For string fields, append the marker text. Preserve all other fields verbatim.curl -sS -X PUT "https://api.relayfile.dev/v1/workspaces/<ws>/fs/file?path=$(urlencode <path>)" \
-H "Authorization: Bearer $TOKEN" -H "Content-Type: application/json" \
-H "X-Correlation-Id: wb-$RANDOM" -H "If-Match: <revision>" \
--data-binary @/tmp/wb-body.json --max-time 60
HTTP 202 with {"opId":"op_<n>", "status":"queued", "targetRevision":"<new-rev>", "writeback":{"provider":"<p>","state":"pending"}}.GET /v1/workspaces/<ws>/ops/op_<n>. Expected: status: "succeeded" or "completed". Watch for the cloud#780 pattern: status:"failed", attemptCount:0, lastError:"No <p> writeback rule matched <path>" — the routing layer rejected the path because the adapter has no edit rule. File an issue per the template.cloud#780.<resource>/.create.example.json as the starting point. Customize the marker in a clearly-labeled field (e.g. the issue/comment/page title or body)./<p>/<resource>/wb-test-<utc>.json).<id>.json appears with the synced data, and the original draft file is rewritten as a pointer/receipt referencing the canonical path. Verify both the canonical record exists AND the draft was rewritten (not just left as-is, not deleted).This phase requires the operator to make a change in the external provider UI/API. Coordinate with them.
revision advanced./digests/today.md — the change should appear in the activity summary for the provider (assuming the digest internal-path filter from cloud#771 is correctly excluding internals).When you see these, file the issue immediately — they are known classes with known evidence:
| Pattern | Looks like | Filed as | Issue template focus |
|---|---|---|---|
| Empty discovery schema masked by dedup | backfilled:true but properties:{} AND lastEditedAt older than refresh | cloud#778 | Resource × root cause hypothesis (row-id vs alias-key mismatch); add behavioral regression test asking |
| Missing writeback rule for canonical edit | op_<n>.status:"failed", attemptCount:0, lastError:"No <p> writeback rule matched <path>" | cloud#780 | Cite both the LAYOUT contract AND the live emit path; ask for the rule + a regression test |
| Pathologically slow control-plane endpoint | Same endpoint, multiple HTTP timings, variance ≥10× | cloud#766 | Always include a comparison to fast endpoints (/api/health, /fs/tree) at the same time |
| Worker bundle drift | B1 worker import safety fails with Node builtin resolution errors | cloud#762 | The fix is import-graph split, NEVER an external allowlist |
| Connection-created ingestion gap | oauth.connected stays false after a successful Nango OAuth | cloud#736 | Check connect-session pre-creates a pending row; webhook ingress; mock vs prod path divergence |
| Worker dedup at parity-enablement | (latent) Worker queue consumer doing real work without persistent dedup | cloud#775 | At-least-once → duplicate side effects; needs D1 or postgres-js-over-Hyperdrive |
Every gap discovered during verification becomes a GitHub issue. Use this template:
## Summary
[1–3 sentences: what happens, where, and why it matters operationally]
## Empirical evidence
[Curl response excerpts, file-content excerpts, file paths + revisions. Concrete, not summarized.]
## Repro
[Numbered steps an engineer can copy-paste. Include exact paths, exact headers if relevant, the workspace id if it's a published one.]
## Suspected root cause
[Hypothesis with file:line refs if available. Be explicit that it's a hypothesis vs verified.]
## Why it matters
[Operational impact — does it block a documented feature? Mislead an agent? Silently corrupt data?]
## Asks / next steps
[Concrete, numbered. E.g. "Trace X", "Add regression test for Y at file:line", "Update the operator-facing doc Z".]
## Context
[Cross-link related issues + PRs. Mention which verification phase surfaced it.]
Every outward-facing write (writeback test, create test) MUST include a clearly-marked machine-greppable marker so the operator can find + clean up afterwards:
[relayfile writeback test <ISO-utc>] — e.g. [relayfile writeback test 2026-05-20T08:09:56Z].After every writeback test, output: the provider, the exact record id, the path in the workspace, the timestamp marker. That output is what the operator uses to manually verify + clean up.
Final report MUST include a per-provider × phase matrix:
| Provider | Auth | Connect | Sync | Tree | Discovery | Writeback-out | Webhook-in |
|---|---|---|---|---|---|---|---|
| gmail | ✅ HTTP 200 | ✅ oauth.connected:true | ✅ initialSync.state:complete ( records) | ✅ matches LAYOUT | ⚠️ schema empty (cloud#NNN) | ⏭️ skip (no schema) | ❌ change not propagated (cloud#MMM) |
| gcal | ... | ... | ... | ... | ... | ... | ... |
Cells: ✅ + one-line evidence • ⚠️ + caveat • ❌ + linked issue • ⏭️ + reason for skip. Never a bare ✅ without evidence.
Update this list as scope grows.
Append a new failure-pattern row to the table whenever a new class of gap is discovered. Append a new phase section if a phase emerges that isn't covered (e.g. a Phase 8 — Bulk operations if bulk writeback semantics become a real concern). An unrecorded failure mode WILL recur — keep this file current as the live ledger.